Lucene search
K
SuseMost viewed

5412 matches found

SUSE Linux
SUSE Linux
added 2024/11/07 10:8 a.m.4 views

Security update for go1.22-openssl

This update for go1.22-openssl fixes the following issues: This update ships go1.22-openssl 1.22.7.1 jscSLE-18320 Update to version 1.22.7.1 cut from the go1.22-fips-release branch at the revision tagged go1.22.7-1-openssl-fips. Update to Go 1.22.7 229 go1.22.7 released 2024-09-05 includes securi...

7.5CVSS7.8AI score0.91969EPSS
Exploits2References64
SUSE Linux
SUSE Linux
added 2024/11/07 10:8 a.m.4 views

Security update for go1.23-openssl

This update for go1.23-openssl fixes the following issues: This update ships go1.23-openssl version 1.23.2.2. jscSLE-18320 go1.23.2 released 2024-10-01 includes fixes to the compiler, cgo, the runtime, and the maps, os, os/exec, time, and unique packages. go69119 os: double close pidfd if caller...

5.9CVSS6.4AI score0.01127EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2024/11/06 10:14 a.m.4 views

Security update for python310

This update for python310 fixes the following issues: CVE-2024-9287: Fixed quoted path names provided when creating a virtual environment bsc1232241. Bug fixes: Drop .pyc files from docdir for reproducible builds bsc1230906. Patch Instructions: To install this SUSE update use the SUSE recommended...

6.5CVSS7.5AI score0.00647EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2024/11/01 3:26 p.m.4 views

Security update for ruby2.5

This update for ruby2.5 fixes the following issues: CVE-2024-43398: Fixed DoS when parsing a XML that has many deep elements with the same local name attributes bsc1229673 CVE-2024-41123: Fixed DoS when parsing an XML that contains many specific characters such as whitespaces, and bsc1228794...

8.7CVSS7.2AI score0.02064EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2024/11/01 3:6 p.m.4 views

Security update for apache2

This update for apache2 fixes the following issues: CVE-2024-40725: Fixed source code disclosure of local content bsc1228097 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...

7.5CVSS5.9AI score0.04134EPSS
Exploits3References4
SUSE Linux
SUSE Linux
added 2024/10/31 8:50 a.m.4 views

Security update for 389-ds

This update for 389-ds fixes the following issues: Persist extracted key path for ldapsslclientinit over repeat invocations bsc1230852 Re-enable use of .dsrc basedn for dsidm commands bsc1231462 Update to version 2.2.10git18.20ce9289: RFE: Use previously extracted key path Update dsidm to...

7.5CVSS7.2AI score0.01256EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2024/10/30 6:3 p.m.4 views

Security update for the Linux Kernel (Live Patch 53 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122194 fixes several issues. The following security issues were fixed: CVE-2024-35863: Fixed potential UAF in isvalidoplockbreak bsc1225011. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow bsc1225819. CVE-2024-35862: Fixed...

7.8CVSS7.7AI score0.00265EPSS
Exploits0References20
SUSE Linux
SUSE Linux
added 2024/10/18 5:54 a.m.4 views

Security update for python-starlette

This update for python-starlette fixes the following issues: CVE-2024-47874: Fixed possible DoS via parts size in multipart/form-data requests bsc1231689 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS8.4AI score0.00652EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/16 7:4 p.m.4 views

Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024111 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfochangednotify bsc1225739. CVE-2024-40954...

7.8CVSS8.5AI score0.00767EPSS
Exploits1References80
SUSE Linux
SUSE Linux
added 2024/10/16 2:28 p.m.4 views

Security update for php8

This update for php8 fixes the following issues: CVE-2024-8925: Fixed erroneous parsing of multipart form data in HTTP POST requests leads to legitimate data not being processed bsc1231360 CVE-2024-8927: Fixed cgi.forceredirect configuration is bypassable due to an environment variable collision...

6.9CVSS6.6AI score0.01077EPSS
Exploits3References12
SUSE Linux
SUSE Linux
added 2024/10/16 10:3 a.m.4 views

Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059150 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6nhflushexceptions bsc1227651...

7.8CVSS8.2AI score0.00269EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2024/10/16 9:33 a.m.4 views

Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024188 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6nhflushexceptions bsc1227651...

7.8CVSS7.8AI score0.01166EPSS
Exploits2References64
SUSE Linux
SUSE Linux
added 2024/10/16 9:32 a.m.4 views

Security update for unbound

This update for unbound fixes the following issues: CVE-2024-8508: Fixed unbounded name compression that could lead to denial of service bsc1231284 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

6.9CVSS6.8AI score0.00806EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/14 11:3 a.m.4 views

Security update for wireshark

This update for wireshark fixes the following issues: Update to Wireshark 4.2.8: CVE-2024-9781: Fixed AppleTalk and RELOAD Framing dissector crash bsc1231476. Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.2.8.html Patch...

5.5CVSS7.8AI score0.00306EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/11 12:33 p.m.4 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.3.1 ESR MFSA 2024-51 bsc1231413 CVE-2024-9680: Use-after-free in Animation timeline bmo1923344 Also includes the following CVEs from MFSA 2024-47 bsc1230979 CVE-2024-9392: Compromised content...

8.8CVSS10AI score0.32568EPSS
Exploits1References28
SUSE Linux
SUSE Linux
added 2024/10/10 1:29 p.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48901: btrfs: do not start relocation until in progress drops are done bsc1229607. CVE-2022-48911: kabi: add nfqueuegetrefs for kabi compliance...

8.7CVSS8.4AI score0.00992EPSS
Exploits4References616
SUSE Linux
SUSE Linux
added 2024/10/10 11:29 a.m.4 views

Security update for xen

This update for xen fixes the following issues: Security fixes: CVE-2024-31145: Fixed error handling in x86 IOMMU identity mapping XSA-460 bsc1228574 CVE-2024-31146: Fixed PCI device pass-through with shared resources XSA-461 bsc1228575 CVE-2024-45817: Fixed Deadlock in vlapicerror XSA-462...

7.5CVSS7.3AI score0.00548EPSS
Exploits0References14
SUSE Linux
SUSE Linux
added 2024/10/09 4:55 p.m.4 views

Security update for redis

This update for redis fixes the following issues: CVE-2024-31228: Fixed unbounded recursive pattern matching bsc1231265 CVE-2024-31449: Fixed integer overflow bug in Lua bittohex bsc1231264 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS9AI score0.04488EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2024/10/09 9:9 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52610: net/sched: actct: fix skb leak and crash on ooo frags bsc1221610. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow...

8.7CVSS8.5AI score0.00992EPSS
Exploits3References748
SUSE Linux
SUSE Linux
added 2024/10/09 8:45 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52610: net/sched: actct: fix skb leak and crash on ooo frags bsc1221610. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow...

8.7CVSS8.5AI score0.00992EPSS
Exploits3References748
SUSE Linux
SUSE Linux
added 2024/10/08 2:6 p.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48911: kabi: add nfqueuegetrefs for kabi compliance. bsc1229633. CVE-2022-48923: btrfs: prevent copying too big compressed lzo segment bsc1229662...

7.8CVSS8AI score0.00824EPSS
Exploits0References52
SUSE Linux
SUSE Linux
added 2024/10/08 8:30 a.m.4 views

Security update for Mesa

This update for Mesa fixes the following issues: CVE-2023-45913: Fixed NULL pointer dereference via dri2GetGlxDrawableFromXDrawableId bsc1222040 CVE-2023-45919: Fixed buffer over-read in glXQueryServerString bsc1222041 CVE-2023-45922: Fixed segmentation violation in glXGetDrawableAttribute...

4.8CVSS5.6AI score0.00536EPSS
Exploits1References12
SUSE Linux
SUSE Linux
added 2024/10/07 12:16 p.m.4 views

Security update for mozjs115

This update for mozjs115 fixes the following issues: CVE-2024-45490: Fixed negative len for XMLParseBuffer in embedded expat bnc1230036 CVE-2024-45491: Fixed integer overflow in dtdCopy in embedded expat bnc1230037 CVE-2024-45492: Fixed integer overflow in function nextScaffoldPart in embedded...

6.9CVSS8AI score0.01686EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2024/10/03 1:4 p.m.4 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.3.0 ESR MFSA-2024-47, bsc1230979: CVE-2024-8900: Clipboard write permission bypass CVE-2024-9392: Compromised content process can bypass site isolation CVE-2024-9393: Cross-origin access to P...

9.8CVSS10AI score0.00738EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2024/10/01 2:43 p.m.4 views

Security update for OpenIPMI

This update for OpenIPMI fixes the following issues: CVE-2024-42934: crash or message authentication bypass on IPMI simulator due to missing bounds check. bsc1229910 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5CVSS5.7AI score0.00395EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for xdg-desktop-portal

This update for xdg-desktop-portal fixes the following issue: CVE-2026-40354: File deletion via symlink attack bsc1262045. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for perl-Config-IniFiles

This update for perl-Config-IniFiles fixes the following issue CVE-2026-11527: OS command injection and file overwrite via a 2-arg open of the -file argument in makefilehandle bsc1268236. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.8AI score0.00618EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for buildah

This update for buildah fixes the following issues CVE-2026-25680,CVE-2026-25681,CVE-2026-27136,CVE-2026-42502,CVE-2026-42506: golang.org/x/net/html: multiple issues when parsing HTML files bsc1267179. CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input...

9.1CVSS7AI score0.00868EPSS
Exploits2References58
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for exiv2-0_26

This update for exiv2-026 fixes the following issues CVE-2025-54080: out-of-bounds read in Exiv2::EpsImage::writeMetadata when writing metadata into a crafted image file bsc1248962. CVE-2026-25884: out-of-bounds read in CrwMap::decode0x0805 bsc1259083. CVE-2026-27596: integer overflow in...

8.3CVSS5.8AI score0.00367EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for curl

This update for curl fixes the following issues CVE-2026-4873: connection reuse ignores TLS requirement bsc1262631. CVE-2026-5545: wrong reuse of HTTP Negotiate connection bsc1262632. CVE-2026-5773: wrong reuse of SMB connection bsc1262633. CVE-2026-6253: proxy credentials leak over redirect-to...

8.3CVSS7.1AI score0.00639EPSS
Exploits6References24
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for libsoup

This update for libsoup fixes the following issue CVE-2026-1801: HTTP Request Smuggling in soupfilterinputstreamreadline bsc1257649. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

6.9CVSS5.8AI score0.00376EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for pacemaker

This update for pacemaker fixes the following issue CVE-2026-10649: denial of service via integer overflow in remote message decompression bsc1268381. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.5CVSS5.9AI score0.0044EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for cifs-utils

This update for cifs-utils fixes the following issue CVE-2026-12505: cifs.upcall local privilege escalation via requestkey-controlled namespace switch and NSS loading bsc1267389. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate o...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for sg3_utils

This update for sg3utils fixes the following issue Update to version 1.47+16.aad0b411: sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for sg3_utils

This update for sg3utils fixes the following issue Update to version 1.44763+23.769c9b5b: sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for sg3_utils

This update for sg3utils fixes the following issue Update to version 1.43+49.47792c16: sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
added yesterday3 views

Security update for sg3_utils

This update for sg3utils fixes the following issue sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
added 2 days ago3 views

Security update for google-cloud-sap-agent

This update for google-cloud-sap-agent fixes the following issues: CVE-2026-39821: Update golang.org/x/net dependency bsc1266604. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

9.1CVSS6.7AI score0.00478EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2 days ago3 views

Security update for libheif

This update for libheif fixes the following issues CVE-2026-32282: os: Root.Chmod can follow symlinks out of the root on Linux bsc1261658. CVE-2026-32814: Uninitialized Heap Memory Information Leak via Failed Grid Tiles bsc1265878. Patch Instructions: To install this SUSE update use the SUSE...

6.3CVSS6.1AI score0.00303EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2 days ago3 views

Security update for freeipmi

This update for freeipmi fixes the following issue CVE-2026-50031: denial of service via buffer overflow in ipmi-oem client bsc1267605. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

7.5CVSS6AI score0.00405EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for giflib

This update for giflib fixes the following issue CVE-2026-26740: heap out-of-bounds read when processing a specially crafted GIF file containing a GCE block with a truncated extension byte count bsc1259836. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.6CVSS5.8AI score0.00467EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for google-osconfig-agent

This update for google-osconfig-agent fixes the following issues: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260264. CVE-2026-39821: Update golang.org/x/net/idna dependency bsc1266603. CVE-2026-39827: Update...

9.1CVSS6.6AI score0.01557EPSS
Exploits1References50
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for exiv2

This update for exiv2 fixes the following issues CVE-2025-54080: out-of-bounds read in Exiv2::EpsImage::writeMetadata when writing metadata into a crafted image file bsc1248962. CVE-2026-25884: out-of-bounds read in CrwMap::decode0x0805 bsc1259083. CVE-2026-27596: integer overflow in...

8.3CVSS6.3AI score0.00367EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for openssl-3-livepatches

This update for openssl-3-livepatches fixes the following issues CVE-2025-11187: Improper validation of PBMAC1 parameters in PKCS12 MAC verification bsc1256878. CVE-2025-15467: Stack buffer overflow in CMS AuthEnvelopedData parsing bsc1256876. CVE-2025-15468: NULL dereference in SSLCIPHERfind...

9.8CVSS7.2AI score0.47621EPSS
Exploits7References18
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs bsc1266290. CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work...

9.3CVSS6.7AI score0.0055EPSS
Exploits1References124
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for opensc

This update for opensc fixes the following issues CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device responses bsc1261214. CVE-2025-66037: crafted input can cause an out-of-bounds read bsc1261218. CVE-2025-66038: improper compact-TLV length validation can lead to crash or...

8.5CVSS6.2AI score0.00296EPSS
Exploits2References24
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for python36

This update for python36 fixes the following issues: CVE-2026-3446: Base64 decoding stops at first padded quad by default bsc1261970. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

6CVSS5.8AI score0.00188EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for util-linux

This update for util-linux fixes the following issue CVE-2026-27456: TOCTOU in the mount program when setting up loop devices bsc1261606. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

4.7CVSS5.8AI score0.00118EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for haproxy

This update for haproxy fixes the following issues CVE-2026-55203: integer overflow vulnerability in the fcgiconn structure's drl field that allows buffer misparse as new FCGI record headers bsc1268557. CVE-2026-55204: null pointer dereference vulnerability in hpackdhtinsert within src/hpack-tbl....

7.5CVSS6AI score0.00431EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 5 days ago3 views

Security update for dovecot22

This update for dovecot22 fixes the following issues CVE-2026-33603: login: base64 input can contain tabs that bypass IPC protection bsc1265147. CVE-2026-40020: IMAP folders can be shared-spammed to everyone bsc1265149. CVE-2026-42006: imap-login: uncontrolled memory usage with excessive bracing...

8.7CVSS5.8AI score0.00454EPSS
Exploits0References12
Total number of security vulnerabilities5000